Home / Vulnerability Intelligence / CVE-2026-29198

CVE-2026-29198 - Vulnerability Analysis

CriticalCVSS: 9.8

Last Updated: April 23, 2026

Rocket.Chat - Authentication Bypass

Published: April 23, 2026Updated: April 23, 2026Remote Exploitable

Overview

Rocket.Chat <8.3.0, <8.2.1, <8.1.2, <8.0.3, <7.13.5, <7.12.6, <7.11.6, and <7.10.9 contains a NoSQL injection caused by improper input handling in OAuth app configuration, letting attackers perform account takeover of the first user with a generated token, exploit requires OAuth app configuration.

Severity & Score

Severity: Critical

CVSS Score: 9.8

Impact

Attackers can take over the first user account by exploiting NoSQL injection in OAuth app configuration.

Mitigation

Update to the latest version beyond 8.3.0.

References

https://github.com/RocketChat/Rocket.Chat/pull/39492
https://hackerone.com/reports/3564655

Related Resources

Vulnerability Intelligence Dashboard
Credential Scanner

Details

CVE ID: CVE-2026-29198
Severity: Critical
CVSS Score: 9.8
Type: nosql_injection
Status: new

CWE

CWE-89

CVSS Metrics

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H